CVE-2023-4949

NameCVE-2023-4949
DescriptionAn attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way to exploit a memory corruption in grub’s XFS file system implementation.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
grub (PTS)bullseye0.97-77vulnerable
bookworm0.97-80vulnerable
sid, trixie0.97-82vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
grubsource(unstable)(unfixed)unimportant

Notes

https://xenbits.xenproject.org/xsa/advisory-443.html
grub-legancy has not secure boot support. The CVE is specific for the src:grub
issue "An attacker with local access to a system (either through a disk or external
drive) can present a modified XFS partition to grub-legacy in such a way to exploit
a memory corruption in grub's XFS file system implementation."

Search for package or bug name: Reporting problems